Hi, I was to fast with my question. I changed the ca chain file frpm .crt (as
in ssl-certificates.conf) to the .pem format. Now it works fine.
Thank you for the help.
Best Regards,
Hubert
> Am 25.01.2018 um 14:40 schrieb Hubert Kupper via PacketFence-users
>
Hello Hubert,
it will be cat server.crt intermediate1.cert intermediate2.crt
server.key > server.pem
Regards
Fabrice
Le 2018-01-25 à 08:40, Hubert Kupper via PacketFence-users a écrit :
> Hello Fabrice,
>
> thanks. I did: cat server.crt server.key > server.pem. Now packetfence
> starts and the
Hello Fabrice,
thanks. I did: cat server.crt server.key > server.pem. Now packetfence
starts and the registration page pop up. How can I add the ca chain?
Best regards,
Hubert
Am 25.01.2018 um 03:22 schrieb Durand fabrice via PacketFence-users:
Hello Hubert,
Haproxy terminate the ssl
Hello Hubert,
Haproxy terminate the ssl connection , so the certificate must be use by
haproxy.
Take a look there
https://github.com/inverse-inc/packetfence/blob/devel/Makefile#L78 to
see how to do it.
Regards
Fabrice
Le 2018-01-23 à 00:26, Hubert Kupper via PacketFence-users a écrit
Hello,
we have the following problem:
We want to replace the packetfence certs with certs from our PKI
provider because the security warnings confuse some of our users. We
copied the certs to /conf/ssl, checked
/conf/httpd.conf.d/ssl-certificates.conf and the hostname in pf.conf.
All seems